On Tuesday 21 June 2011 15:56:10 Rene Mayorga wrote:
Package: wnpp
Severity: normal
The current maintainer of arp-scan, Tim Brown t...@nth-dimension.org.uk,
is apparently not active anymore. Therefore, I orphan this package now.
Maintaining a package requires time and skills. Please only
=2D-=20
Tim Brown
mailto:t...@65535.com
--nextPart2958378.qgascxSZ95
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
iQIcBAABCAAGBQJNc+tvAAoJEPJhpTVyySo7k1UP
waiting for someone to do the work required to come up with a
transition plan. No one so far has had time and interest to work on it.
The details of what needs to be done at a high level are covered in the
open Policy bug.
Tim Brown t...@nth-dimension.org.uk ([machine] on IRC) showed recent
On Saturday 18 September 2010 16:52:22 Vincenzo Campanella wrote:
Package: openvas-server
Version: 2.0.3-3
Severity: wishlist
Tags: l10n patch
Enclosed please find the updated Italian translation of the Debconf
template.
This has been committed to trunk.
Tim
--
Tim Brown
mailto:t...@nth
As per a suggestion on #debian-mentors I've noted that the same bug was filed
upstream by me (http://bugs.kde.org/show_bug.cgi?id=204849) and that I have
submitted a patch on the upstream bug to fix the described problem.
Tim
--
Tim Brown
mailto:t...@nth-dimension.org.uk
http://www.nth
else seemed massively fussed so I didn't push the matter.
Tim
--
Tim Brown
mailto:t...@nth-dimension.org.uk
http://www.nth-dimension.org.uk/
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
/etc/udev/rules.d/65_dmsetup.rules needs to be changed so that the three
first lines all have GOTO=device_mapper_end.
Confirmed that this resolves the problem.
Cheers,
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth-dimension.org.uk/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED
work
with them to resolve the issue there.
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth-dimension.org.uk/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
be interested in making this feature
request happen?
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth-dimension.org.uk/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Package: irpas
Version: 0.10-4
Severity: important
Justification: fails to build from source
irpas now requires Build-Depends libpcap0.7-dev, rather than libpcap-dev. When
this change is made, it will then build on amd64.
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
this issue on stable - no
warranties. Just wanted to make this final email as I'm intending to release
my advisory shortly subject to any updates here.
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth-dimension.org.uk/
diff -rN festival-1.4.3/debian/changelog festival-1.4.3-new/debian
On Saturday 01 March 2008 14:44:01 Nico Golde wrote:
Hi Tim,
* Tim Brown [EMAIL PROTECTED] [2008-03-01 15:28]:
On Tuesday 19 February 2008 20:12:29 Nico Golde wrote:
It
probably also needs rewording since SuSE confirmed it affected them
and I think we agree it affects Debian. How
bug history there was some discussion about
disabling the system command too, but IMO this does little to fix the
underlying problem of an unauthenticated scheme interpreter bound to a
remote port with no ACLs or authentication.
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth
Nico,
I've just notice that the security tracker
http://security-tracker.debian.net/tracker/status/release/unstable has been
updated for festival. However it is wrong. This bug *is* remotely
exploitable (due to the afore mentioned lack of ACLs).
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED
On Tuesday 19 February 2008 19:20:23 Nico Golde wrote:
* Tim Brown [EMAIL PROTECTED] [2008-02-19 20:08]:
I've just notice that the security tracker
http://security-tracker.debian.net/tracker/status/release/unstable has
been updated for festival. However it is wrong. This bug
to unstable and backported to stable security.
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth-dimension.org.uk/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
(and owned by festival,audio) 2)
Passwords are displayed by debconf rather than hiding them with *'s. I'm
only a fellow maintainer, but I'm sure your mentor can provide appropriate
feedback on these issues.
Cheers,
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth-dimension.org.uk
, as this is a security bug.
Another thought, the fix will require backporting to stable so that it can go
into the security updates.
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth-dimension.org.uk/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL
On Monday 18 February 2008 01:40:00 Kumar Appaiah wrote:
On Sun, Feb 17, 2008 at 05:32:44PM +, Tim Brown wrote:
I've just built it here. It is lintian clean and the patch provides the
required security fix. However 2 small points, 1) The logging doesn't
work as /var/log/festival isn't
Package: festival
Version: 1.96~beta-5
Severity: critical
Tags: security
Justification: root security hole
Nth Dimension Security Advisory (NDSA20080215)
Date: 15th February 2008
Author: Tim Brown mailto:[EMAIL PROTECTED]
URL: http://www.nth-dimension.org.uk/ / http://www.machine.org.uk/
Product
that a password is set (perhaps take a look at the Debian MySQL
server package which does something similar for the debian-sys-maint in
the /etc/mysql/debian.cnf file). Limiting access to local hosts is an
improvement, but as noted it does not guard against local privilege
escalation attacks.
Tim
--
Tim
Package: wnpp
Severity: wishlist
Owner: Tim Brown [EMAIL PROTECTED]
* Package name: openvas-client
Version : 0.9.1
Upstream Author : OpenVAS [EMAIL PROTECTED]
* URL : http://www.openvas.org/
* License : GPL
Programming Lang: C
Description : Remote
Package: wnpp
Severity: wishlist
Owner: Tim Brown [EMAIL PROTECTED]
* Package name: dirbuster
Version : 0.9.7
Upstream Author : James Fisher [EMAIL PROTECTED]
* URL : http://sourceforge.net/projects/dirbuster/
* License : LGPL
Programming Lang: Java
used by developers
* Auditing dynamic applications where URLs don't necessarily map on to files
* Auditing web server ACLs
* Load testing - it can produce up to 6000 requests/second
I'd also point out that this is an OWASP project.
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth
Package: wnpp
Severity: wishlist
Owner: Tim Brown [EMAIL PROTECTED]
* Package name: arp-scan
Version : 1.5
Upstream Author : Roy Hills [EMAIL PROTECTED]
* URL : http://www.nta-monitor.com/tools/arp-scan/
* License : GPL
Programming Lang: C
Description
On Monday 12 March 2007 18:25, Joerg Jaspert wrote:
On 10956 March 1977, Tim Brown wrote:
Why package it? Other than the practical uses outlined above, because
having binaries on a system outside of the package management system is a
PITA to keep track of / update and it makes building
Package: wnpp
Severity: wishlist
Owner: Tim Brown [EMAIL PROTECTED]
* Package name: sucrack
Version : 1.1
Upstream Author : Nico Leidecker [EMAIL PROTECTED]
* URL : http://www.leidecker.info/
* License : GPL
Programming Lang: C
Description
On Monday 12 March 2007 13:57, Marco d'Itri wrote:
On Mar 12, Tim Brown [EMAIL PROTECTED] wrote:
I'm packaging a bunch of security tools that I use in my job pen testing.
I do not understand how you would use such a tool in packaged form.
If you can install a package then obviously you
On Monday 12 March 2007 13:02, Marco d'Itri wrote:
On Mar 12, Tim Brown [EMAIL PROTECTED] wrote:
sucrack is a multithreaded Linux/UNIX tool for cracking local user
accounts via wordlist bruteforcing su
What is the point of packaging this?
I'm packaging a bunch of security tools that I use
On Monday 12 March 2007 16:08, Hendrik Sattler wrote:
Am Montag 12 März 2007 12:30 schrieb Tim Brown:
Package: wnpp
Severity: wishlist
Owner: Tim Brown [EMAIL PROTECTED]
* Package name: sucrack
Version : 1.1
Upstream Author : Nico Leidecker [EMAIL PROTECTED]
* URL
a console tool (by default su) it can be used in places
where John can't - for example auditing SSH key phrases, or where the
penetration tester is attempting to escalate privileges on an already
compromised system.
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth-dimension.org.uk
clarification regarding
changes to UK law that might affect this tool and we have had assurances that
legitimate security researchers and the tools they develop will not be
targetted here in the UK.
Tim
--
Tim Brown
mailto:[EMAIL PROTECTED]
http://www.nth-dimension.org.uk/
--
To UNSUBSCRIBE, email
32 matches
Mail list logo